1) APIs to deliver by Tech Exchange
- Definitive TIER API Guideline document
- Grouper permission and policy management
- SoR to Registry/ODS
- Registry to Grouper: Registry is authoritative source of subjects
- Registry to manage Basis Groups and memberships in Grouper
- Provisioning
- Consent-informed Attribute Release (CAR)
- External API authored by Marlena
- Presentation to TIER-API prior to their review of the API
- Certificate API
- An API for server certificate management for use by InCommon
- JimJ will help with a Comodo proxy
2) Define and implement an event-driven messaging approach
- asynch architecture, to complement the more synchronous API-based approach
3) Guidelines and Recommendations on Security Models for API Authentication and Authorization
- Develop guidelines and recommendation in cooperation with InCommon TAC OIDC WG and REFEDs WG
- Demonstration relying on a first version of Jim Fox's Client-Service Registry
4) Entity Registry
- Refine data model (AI - Warren)
- SCIM - user
- Midpoint Install
- JimJ has packaged MidPoint and an integrated OpenLDAP into a container so we can implement Warren and Ben's work on the Thin Registry as a start
- Provisioning is a strength of Midpoint that we want to test out
- Perhaps use a Canvas connector for this.
- Implementation to support requirements for Provisioning in the WG
- COmanage Install - support for 3.a through 3.d
5) Simple identity matching and related features
- Single package used by both midPoint and COmange
6) Person Registry and ODS connection
TIER HAS to do the API for identity data a la ODS. Longer run we’ll need an implementation package for those APIs.
Demonstrate Person data APIs (using the registry, ODS, group repository to populate the user SCIM schema.
7) Grouper
Building a training course for Grouper, leveraging both the Grouper Deployment Guide and Bill Thompson and Chris Hyzer pre-conference Grouper training session at Apereo.
Demonstrations of more advanced features at Tech Ex
8) Provisioning: Canvas API connector(s) for midPoint and/or COmanage
- See above 4.3 and 4.4
9) Response to Packaging Feedback from TIER Developer Meeting after Global Summit
- Starting now in Packaging WG
- Prepare to send to community and take remediation action
10) Documentation Next Steps
- Starting now in Packaging WG (for both components and their operating environments)
BennO - Consideration for COmanage Deployment Guide
More likely to take form of screen shares and web cases
Not sure that the GDG approach is possible
PaulC - looking at using COmanage in TIER/InCommon Shibboleth Training as an SP integration example
Would like to offer either Grouper or COmanage as general tools for SP integration
MarlenaE proposed the idea of a "Quick Start Install Guide" for IdP V3
- PaulC - New InCommon updated training
- just starting to gel
- Will have an installer but not sure exactly what form that will take.